package com.ywm.educenter.controller;

import com.google.gson.Gson;
import com.ywm.commonUtil.JwtUtils;
import com.ywm.commonUtil.R;
import com.ywm.educenter.entity.UcenterMember;
import com.ywm.educenter.service.UcenterMemberService;
import com.ywm.educenter.utils.ConstantWxUtils;
import com.ywm.educenter.utils.HttpClientUtils;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.stereotype.Controller;
import org.springframework.web.bind.annotation.GetMapping;
import org.springframework.web.bind.annotation.RequestMapping;
import org.springframework.web.bind.annotation.RestController;

import java.io.UnsupportedEncodingException;
import java.net.URLEncoder;
import java.util.HashMap;

@Controller
@RequestMapping("/api/ucenter/wx")
public class WeChatApiConntroller {
    @Autowired
    private UcenterMemberService memberService;
    /**
     * @param code  类似于手机的验证码（临时票据）
     * @param state 原样传递的值
     * @return
     */
    //获取扫描人信息
    @GetMapping("callback")
    public String callback(String code, String state) {
        //1.获取code值，临时票据，类似于验证码
        //2.根据code请求微信固定地址，获取accsess_token,openid
        //向认证服务器发送请求换取access_token
        String baseAccessTokenUrl = "https://api.weixin.qq.com/sns/oauth2/access_token" +
                "?appid=%s" +
                "&secret=%s" +
                "&code=%s" +
                "&grant_type=authorization_code";
        //拼接参数(id,密钥,code值)
        String accessTokenUrl = String.format(baseAccessTokenUrl,
                ConstantWxUtils.WX_OPEN_APP_ID,
                ConstantWxUtils.WX_OPEN_APP_SECRET,
                code);
        //通过httpclient，发送拼接好的地址 获得access_token和openID
        String accessTokenInfo = null;
        try {
            accessTokenInfo = HttpClientUtils.get(accessTokenUrl);
        } catch (Exception e) {
            e.printStackTrace();
        }
        //从accessTokenInfo取出access_token,openid,并放入map中
        Gson gson = new Gson();
        HashMap mapAccessToken = gson.fromJson(accessTokenInfo, HashMap.class);
        String access_token = (String) mapAccessToken.get("access_token");
        String openid = (String) mapAccessToken.get("openid");

        //判断数据库中是否有扫码人信息
        UcenterMember member=memberService.getOpenIdMenber(openid);
        if (member == null) {
            //3.根据access_token和openid获取扫描人的信息
            String baseUserInfoUrl = "https://api.weixin.qq.com/sns/userinfo" +
                    "?access_token=%s" +
                    "&openid=%s";
            String userInfoUrl = String.format(baseUserInfoUrl, access_token, openid);
            String userInfo=null;
            try {
                userInfo = HttpClientUtils.get(userInfoUrl);
            } catch (Exception e) {
                e.printStackTrace();
            }
            HashMap userInfoMap = gson.fromJson(userInfo, HashMap.class);
            //获取扫码人的用户名和头像
            String nickname = (String) userInfoMap.get("nickname");
            String headimgurl = (String) userInfoMap.get("headimgurl");
            //添加新用户
            member=new UcenterMember();
            member.setAvatar(headimgurl);
            member.setOpenid(openid);
            member.setNickname(nickname);
            memberService.save(member);
        }
        //将获取到的信息传递给前端页面
            //使用jwt根据menber对象生成token字符串
        String token = JwtUtils.getJwtToken(member.getId(), member.getNickname());
        System.out.println(token);
        //通过路径传递token
        return "redirect:http://localhost:3000?token="+token;
    }

    //微信二维码登录
    @GetMapping("/login")
    public String login() throws Exception {
        // 微信开放平台授权baseUrl
        String baseUrl = "https://open.weixin.qq.com/connect/qrconnect" +
                "?appid=%s" +
                "&redirect_uri=%s" +
                "&response_type=code" +
                "&scope=snsapi_login" +
                "&state=%s" +
                "#wechat_redirect";
        // 回调地址
        String redirectUrl = ConstantWxUtils.WX_OPEN_REDIRECT_URL; //获取业务服务器重定向地址
        try {
            redirectUrl = URLEncoder.encode(redirectUrl, "UTF-8"); //url编码
        } catch (UnsupportedEncodingException e) {
            throw new Exception();
        }

        // 防止csrf攻击（跨站请求伪造攻击）
        //String state = UUID.randomUUID().toString().replaceAll("-", "");//一般情况下会使用一个随机数
        String state = "imhelen";//为了让大家能够使用我搭建的外网的微信回调跳转服务器，这里填写你在ngrok的前置域名
        System.out.println("state = " + state);

        // 采用redis等进行缓存state 使用sessionId为key 30分钟后过期，可配置
        //键："wechar-open-state-" + httpServletRequest.getSession().getId()
        //值：satte
        //过期时间：30分钟

        //生成qrcodeUrl
        String qrcodeUrl = String.format(
                baseUrl,
                ConstantWxUtils.WX_OPEN_APP_ID,
                redirectUrl,
                state);
        //微信请求地址
        return "redirect:" + qrcodeUrl;
    }
}
